suse · CVE-2018-14634

Quick triage

Priority: medium Published: 2021-05-30 14:15:39 UTC Updated: 2026-04-17 15:20:18 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-14634 severity moderate: SUSE including 169 source package names (kernel-3.10.0-862.14.4.el7, kernel-abi-whitelists-3.10.0-862.14.4.el7, …), 398 product×package rows across 49 product lines (HPE Helion OpenStack 8, SLES for SAP Applications 11 SP3, … (49 product lines)): Fixed 209, Known Not Affected 189.

Description:

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

cvelogic Threat Intelligence